$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa File: f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa (raw, json) Hash identifier: s/3Shwg9CGQUMTcaF8nducaBGR03WY5Qto6KXXsczkE= Subject key identifier: B3:D7:37:58:6E:81:23:3C:7E:18:4B:3F:1D:16:22:BC:9E:B6:C1:32 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 5AF0D5F0F50B7E2F0587895056F7F5CA29E33E4F Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa Signing time: Tue 05 Aug 2025 15:00:55 +0000 ROA not before: Tue 05 Aug 2025 15:00:55 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f0:d5:f0:f5:0b:7e:2f:05:87:89:50:56:f7:f5:ca:29:e3:3e:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Aug 5 15:00:55 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=9e7fd28ff6c6af3e6cc3ed709eefa8c5219e22eda72def2fee4babfedb015311, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f3:28:1d:5a:e9:60:db:ae:ee:7a:85:cb:b4: 6e:85:af:ea:c2:39:a5:11:8c:bb:67:3f:40:44:45: 6d:bb:11:0b:5f:7a:67:9e:9c:c6:db:06:e0:16:a2: f9:e7:75:40:ca:3f:f3:c7:bd:19:15:a7:9c:67:46: b0:b0:88:76:22:7e:7b:d2:cf:a3:42:a8:d2:24:32: 20:e6:99:a7:3c:19:1e:36:a0:6b:2a:28:d3:c1:09: d1:c2:4e:b1:86:9e:86:b8:2f:05:5c:96:1d:75:52: 0f:1f:7c:68:ae:08:a3:02:0b:39:62:68:9e:61:15: 1c:e5:71:9d:4f:bd:48:05:93:f5:e4:a2:bb:0c:6f: c7:0d:5f:1e:e6:c8:25:7b:33:ce:f0:1a:09:c6:2f: f3:77:ec:5a:04:61:e0:3e:4a:87:11:f8:d6:5a:22: 85:ab:94:a1:5a:ce:97:32:e0:04:ab:40:ac:2f:ca: e1:59:ed:5a:5e:83:da:b6:2c:06:a1:cf:fc:37:6d: 89:7e:7c:5a:1c:18:f8:00:b6:f3:ad:8a:e5:69:3d: 01:53:31:ec:71:1d:91:3e:6f:ad:93:88:a9:9c:3d: 4b:d5:97:dd:52:40:dc:ff:4b:58:49:b1:d0:00:e5: 5f:f4:5b:7b:ef:d4:33:16:ae:ff:14:5d:e8:1f:14: 2f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D7:37:58:6E:81:23:3C:7E:18:4B:3F:1D:16:22:BC:9E:B6:C1:32 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 30:6d:06:b8:42:ee:5b:f2:2f:cd:c3:ac:45:39:92:01:ed:31: 75:7b:c4:7c:e7:24:5e:a2:a8:aa:ce:6b:52:28:a6:6e:25:1c: 6f:f7:55:c4:09:90:b3:43:5a:5b:eb:65:a0:5f:8f:65:48:f3: 3a:27:f1:40:79:29:f8:d4:db:86:7c:98:1d:a1:11:21:93:8d: 16:fa:01:d6:af:20:d5:d2:5b:8d:b3:2f:f4:e4:cf:7d:ee:5f: 54:e6:d9:37:56:35:4b:87:93:93:63:ef:04:f4:17:7e:b4:0c: 7f:9c:66:6a:dd:5c:f6:9b:70:43:93:9f:46:36:6f:9a:fb:fc: 5b:88:a3:0e:ba:0b:7b:0e:a1:f9:35:f4:a2:d3:53:d2:06:c5: 85:44:16:e5:c2:95:ad:fa:98:c0:3f:a8:e1:32:a1:f1:cb:a3: 10:0f:3e:11:22:95:22:f9:31:30:c0:4d:3f:24:ed:a4:2b:3d: 49:da:23:30:c3:3b:ff:20:ee:0d:ae:36:16:04:ad:aa:21:f3: 62:d9:37:28:13:de:5c:8e:97:2e:e1:3e:43:af:4c:80:17:b8: 5d:c2:c9:69:56:21:98:1a:f6:c6:94:01:28:b0:57:6f:79:58: 95:0c:69:da:e0:4c:c7:a2:f8:9f:54:4a:d6:f9:99:e5:32:5a: db:65:c9:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWvDV8PULfi8Fh4lQVvf1yinjPk8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwODA1MTUwMDU1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTdmZDI4ZmY2YzZhZjNlNmNjM2VkNzA5ZWVmYThjNTIx OWUyMmVkYTcyZGVmMmZlZTRiYWJmZWRiMDE1MzExMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu8ygdWulg267ueoXLtG6Fr+rCOaURjLtnP0BERW27EQtf emeenMbbBuAWovnndUDKP/PHvRkVp5xnRrCwiHYifnvSz6NCqNIkMiDmmac8GR42 oGsqKNPBCdHCTrGGnoa4LwVclh11Ug8ffGiuCKMCCzliaJ5hFRzlcZ1PvUgFk/Xk orsMb8cNXx7myCV7M87wGgnGL/N37FoEYeA+SocR+NZaIoWrlKFazpcy4ASrQKwv yuFZ7Vpeg9q2LAahz/w3bYl+fFocGPgAtvOtiuVpPQFTMexxHZE+b62TiKmcPUvV l91SQNz/S1hJsdAA5V/0W3vv1DMWrv8UXegfFC8/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs9c3WG6BIzx+GEs/HRYivJ62wTIwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2YyZTVlMTFjLWY0ZTAtNGY5MS04ZWQxLWE2Y2JhNmM1ZTI4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBADBtBrhC7lvyL83DrEU5kgHtMXV7 xHznJF6iqKrOa1Iopm4lHG/3VcQJkLNDWlvrZaBfj2VI8zon8UB5KfjU24Z8mB2h ESGTjRb6AdavINXSW42zL/Tkz33uX1Tm2TdWNUuHk5Nj7wT0F360DH+cZmrdXPab cEOTn0Y2b5r7/FuIow66C3sOofk19KLTU9IGxYVEFuXCla36mMA/qOEyofHLoxAP PhEilSL5MTDATT8k7aQrPUnaIzDDO/8g7g2uNhYEraoh82LZNygT3lyOly7hPkOv TIAXuF3CyWlWIZga9saUASiwV295WJUMadrgTMei+J9UStb5meUyWttlyeU= -----END CERTIFICATE-----Generated at Sat Aug 23 16:05:03 2025 by rpki-client